Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the java group in /java with 8 updates #1073

Closed
wants to merge 1 commit into from
Closed

Bump the java group in /java with 8 updates #1073

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 26, 2024
edited
Loading

Bumps the java group in /java with 8 updates:

Package From To
org.assertj:assertj-core 3.25.1 3.25.3
org.apache.maven.plugins:maven-surefire-plugin 3.2.3 3.2.5
com.google.protobuf:protobuf-java 3.25.1 3.25.3
com.google.protobuf:protobuf-java-util 3.25.1 3.25.3
com.google.protobuf:protobuf-java-util 3.25.1 3.25.3
org.apache.maven.plugins:maven-shade-plugin 3.5.1 3.5.2
io.grpc:grpc-bom 1.60.1 1.61.1
com.google.api.grpc:proto-google-common-protos 2.30.0 2.34.0
org.codehaus.mojo:exec-maven-plugin 3.1.1 3.2.0

Updates org.assertj:assertj-core from 3.25.1 to 3.25.3

Release notes

Sourced from org.assertj:assertj-core's releases.

v.3.25.3

🐛 Bug Fixes

  • Lock maven-clean-plugin version for all modules

Core

  • Fix a performance regression in the recursive comparison related to FieldLocation #3350
  • Don't fail when the recursive comparison checks compared fields in collection elements #3349 (proper fix: #3354)

🔨 Dependency Upgrades

  • Upgrade to Flatten Maven Plugin 1.6.0 #3335
  • Upgrade to Groovy 4.0.18 #3347
  • Upgrade to Hibernate Core 6.4.2.Final #3338
  • Upgrade to Maven Surefire Report Plugin 3.2.5 #3330
  • Upgrade to PITest Maven 1.15.6 #3348
  • Upgrade to SpotBugs Maven Plugin 4.8.3.0 #3336
  • Upgrade to advanced-security/maven-dependency-submission-action to 4 #3346

❤️ Contributors

Thanks to all the contributors who worked on this release:

@​ash211

v3.25.2

🐛 Bug Fixes

  • Fix unresolvable Javadoc stylesheet URLs, simplify configuration #3324

Core

  • Fix missing configuration for MatcherAssert soft assertions
  • Make deprecation notice visible in AbstractAssert#asList #3327
  • Recursive comparison uses equals on root object when useOverriddenEquals is enabled #3320
  • satisfiesExactlyInAnyOrder fails if actual overrides equals #3339
  • Avoid calling actual.hashCode() and expected.hashCode() in DualValue #3340
  • Recursive comparison checks for existence of fields in types that parameterize nested unordered iterables #3332

🔨 Dependency Upgrades

  • Upgrade to EqualsVerifier 3.15.6 #3329
  • Upgrade to Maven Surefire Plugin 3.2.5 #3328
  • Upgrade to Spotless Maven Plugin 2.43.0 #3345

❤️ Contributors

Thanks to all the contributors who worked on this release:

... (truncated)

Commits
  • cd72df8 [maven-release-plugin] prepare release assertj-build-3.25.3
  • c9b3177 fix: missing license
  • ae62aca Ignore containers when checking compared fields existence in the recursive co...
  • bad16ef chore(deps-dev): bump org.hibernate.orm:hibernate-core from 6.4.2.Final to 6....
  • c794057 Fix a performance regression in the recursive comparison related to FieldLoca...
  • 9ecb7f4 Lock maven-clean-plugin version for all modules
  • d42d40c chore(deps): bump org.pitest:pitest-maven from 1.15.3 to 1.15.6 (#3348)
  • 5b32492 chore(deps): bump org.apache.maven.plugins:maven-surefire-report-plugin from ...
  • e27cc02 chore(deps): bump org.codehaus.mojo:flatten-maven-plugin from 1.5.0 to 1.6.0 ...
  • 9771091 chore(deps): bump com.github.spotbugs:spotbugs-maven-plugin from 4.8.2.0 to 4...
  • Additional commits viewable in compare view

Updates org.apache.maven.plugins:maven-surefire-plugin from 3.2.3 to 3.2.5

Release notes

Sourced from org.apache.maven.plugins:maven-surefire-plugin's releases.

3.2.5

JIRA link

Release Notes - Maven Surefire - Version 3.2.5

What's Changed

... (truncated)

Commits
  • 4b3a271 [maven-release-plugin] prepare release surefire-3.2.5
  • eb3f1d9 Bump org.codehaus.plexus:plexus-component-metadata from 2.1.1 to 2.2.0
  • 430c406 Bump org.assertj:assertj-core from 3.24.2 to 3.25.1
  • 2d92f2d [SUREFIRE-2231] JaCoCo 0.8.11 fails with old TestNG releases on Java 17+
  • 3290740 Bump org.apache.maven.plugins:maven-docck-plugin from 1.1 to 1.2
  • 25a9776 Bump net.java.dev.javacc:javacc from 7.0.12 to 7.0.13
  • 7752f7e Bump commons-io:commons-io from 2.15.0 to 2.15.1
  • 8874add Revert "Bump jacocoVersion from 0.8.8 to 0.8.11"
  • c0f7755 Fix formatting
  • e5f4545 Bump jacocoVersion from 0.8.8 to 0.8.11
  • Additional commits viewable in compare view

Updates com.google.protobuf:protobuf-java from 3.25.1 to 3.25.3

Commits
  • 4a2aef5 Updating version.json and repo version numbers to: 25.3
  • 7c6ba83 Merge pull request #15814 from protocolbuffers/cp-ruby-3.3
  • 25b1e81 Update Ruby GHA to test against Ruby 3.3.
  • 70e459f Merge pull request #15802 from protocolbuffers/cp-25.x
  • 17ec19d Bump python version to 3.9 for gcloud 460.0.0
  • 9dc736d [ObjC] Use a local to avoid warnings in 32bit builds.
  • 9d1bc10 [CPP] Add the privacy manifest to the C++ CocoaPod.
  • cec08dc [ObjC] Add the privacy manifest to the ObjC CocoaPod.
  • cf87faa Add PrivacyInfo.xcprivacy (#15557)
  • 76d05d4 remove use of mach_absolute_time (#15554)
  • Additional commits viewable in compare view

Updates com.google.protobuf:protobuf-java-util from 3.25.1 to 3.25.3

Updates com.google.protobuf:protobuf-java-util from 3.25.1 to 3.25.3

Updates org.apache.maven.plugins:maven-shade-plugin from 3.5.1 to 3.5.2

Commits
  • 95e22b4 [maven-release-plugin] prepare release maven-shade-plugin-3.5.2
  • d807fea Bump org.vafer:jdependency from 2.9.0 to 2.10
  • 6d60841 Bump org.apache.commons:commons-compress from 1.23.0 to 1.25.0
  • 68457e5 [MSHADE-468] add system requirements history
  • 631371b Add mshade-462 IT
  • cb7b10d [MSHADE-462] 3.5.1 not compatible with 3.4.1: The version cannot be empty.
  • bd982e7 [MSHADE-420] fix time when read from extra field
  • 3692f81 [SHADE-420] create IT: 2 runs with different TZ give different jars
  • a5315de [MSHADE-464] Maven 3.6.3 as minimum requirements
  • e7077c6 [MSHADE-467] Improved concurrency problem fix
  • Additional commits viewable in compare view

Updates io.grpc:grpc-bom from 1.60.1 to 1.61.1

Release notes

Sourced from io.grpc:grpc-bom's releases.

v1.61.1

Bug Fixes

xds: Fix a bug in WeightedRoundRobinLoadBalancer policy that could raise NullPointerException and further cause channel panic when picking a subchannel. This bug can only be triggered when connection can not be established and the channel reports TRANSIENT_FAILURE state. (#10868)

v1.61.0

API Changes

  • Remove unused experimental API ManagedChannelBuilder.enableFullStreamDecompression (#10744)
  • api: Deprecate LoadBalancer.EMPTY_PICKER added in 1.58.0 in favor of FixedResultPicker (860b5cb1f)

New Features

  • binder: Experimental support for asynchronous security policies (#10566)

Improvements

  • core: reduce CompositeReadableBuffer allocation (#3279)
  • core: Improve error message clarity when a channel leak is detected (201893f5e)
  • util: use shared index across round_robin pickers (dca89b25b). This makes its implementation more similar to weighted_round_robin.
  • xds: Implement ADS stream flow control mechanism (#10674). This limits the maximum memory consumed if the control plane sends updates more rapidly than they can be processed.

Bug Fixes

  • core: Check outbound maximum message size for the compressed size in addition to the already-checked uncompressed size (#10739). Fixed the status code to be RESOURCE_EXHAUSTED instead of UNKNOWN.
  • util: Fix NPE when multiple addresses are in an address group for petiole load balancer policies (#10769)
  • util: Disable publishing of fixtures (8ac43dd81). The Gradle test fixtures are for use by grpc-java's internal tests.
  • okhttp: Ignore known conscrypt socket close issue (#10812). This stops an exception from being thrown when a known Conscrypt synchronization issue happens.

Dependencies

  • Drop support for Bazel 5 (55a9c012c). Bazel 7 is available, and Protobuf has already dropped support for Bazel 5.
  • Change many compile deps to runtime deps (d6830d7f9). This reduces the transitive classes "leaked" into the compile classpath. In particular, grpc-core (io.grpc.internal) will be less frequently included transitively at compile time.
  • Upgrade dependencies (c985797d9)
    • Protobuf to 3.25.1
    • auto-value-annotations to 1.10.4
    • error_prone_annotations to 2.23.0
    • proto-google-common-protos to 2.29.0
    • google-cloud-logging to 3.15.14
    • guava to 32.1.3-android
    • okio to 3.4.0

Acknowledgements

v1.60.2

Bug Fixes

xds: Fix a bug in WeightedRoundRobinLoadBalancer policy that could raise NullPointerException and further cause channel panic when picking a subchannel. This bug can only be triggered when connection can not be established and the channel reports TRANSIENT_FAILURE state. (#10868)

Commits

Updates com.google.api.grpc:proto-google-common-protos from 2.30.0 to 2.34.0

Release notes

Sourced from com.google.api.grpc:proto-google-common-protos's releases.

v2.34.0

2.34.0 (2024-01-31)

Features

Bug Fixes

  • Endpoint resolution uses user set endpoint from ClientSettings (#2429) (46b0a85)
  • Move direct path misconfiguration log to before creating the first channel (#2430) (9916540)

v2.33.0

2.33.0 (2024-01-24)

Features

  • Introduce interfaces for metrics instrumentation (#2403) (3c61b14)

Bug Fixes

  • Verify Universe Domain's DirectPath Compatibility after Endpoint Resolution (#2412) (e2de93b)

v2.32.0

2.32.0 (2024-01-19)

Regression

Features

  • Do not set the default endpoint in StubSettings (97ae228)
  • Numeric enums in routing headers (#2328) (4d043de)
  • StubSettings' getEndpoint() will return the service's pre-configured endpoint if there are no user configurations (97ae228)
  • Validate the Universe Domain (#2330) (097bc93)

Bug Fixes

  • adjust release-please configs for cloudbuild yaml updates (#2351) (ed16261)
  • DirectPath non-default SA requires creds (#2281) (c7d614a)
  • format method types and table in Client Overview (#2361) (7436995)

... (truncated)

Changelog

Sourced from com.google.api.grpc:proto-google-common-protos's changelog.

2.34.0 (2024-01-31)

Features

Bug Fixes

  • Endpoint resolution uses user set endpoint from ClientSettings (#2429) (46b0a85)
  • Move direct path misconfiguration log to before creating the first channel (#2430) (9916540)

2.33.0 (2024-01-24)

Features

  • Introduce interfaces for metrics instrumentation (#2403) (3c61b14)

Bug Fixes

  • Verify Universe Domain's DirectPath Compatibility after Endpoint Resolution (#2412) (e2de93b)

2.32.0 (2024-01-19)

Features

  • Do not set the default endpoint in StubSettings (97ae228)
  • Numeric enums in routing headers (#2328) (4d043de)
  • StubSettings' getEndpoint() will return the service's pre-configured endpoint if there are no user configurations (97ae228)
  • Validate the Universe Domain (#2330) (097bc93)

Bug Fixes

  • adjust release-please configs for cloudbuild yaml updates (#2351) (ed16261)
  • DirectPath non-default SA requires creds (#2281) (c7d614a)
  • format method types and table in Client Overview (#2361) (7436995)

Dependencies

  • update dependency com.fasterxml.jackson:jackson-bom to v2.16.1 (#2386) (1160f95)
  • update dependency com.google.errorprone:error_prone_annotations to v2.24.1 (#2390) (d533760)

... (truncated)

Commits
  • 8e2536b chore(main): release 2.34.0 (#2417)
  • b28235a feat: autopopulate fields in the request (#2353)
  • 9916540 fix: Move direct path misconfiguration log to before creating the first chann...
  • 5c291e8 feat: MetricsTracer implementation (#2421)
  • 46b0a85 fix: Endpoint resolution uses user set endpoint from ClientSettings (#2429)
  • 363e35e feat: enable generation with postprocessing of multiple service versions (#2342)
  • a34d897 ci: suppress download progress in unmanaged dependency check (#2424)
  • 0d7303c ci: validate unmanaged dependency check in a few downstream repositories (#2426)
  • acdde47 feat: move new client script (#2333)
  • a34d3dd chore: add google/shopping/type/types.proto when generating shopping APIs (...
  • Additional commits viewable in compare view

Updates org.codehaus.mojo:exec-maven-plugin from 3.1.1 to 3.2.0

Release notes

Sourced from org.codehaus.mojo:exec-maven-plugin's releases.

3.2.0

🚀 New features and improvements

  • Enable to exec:java runnables and not only mains with loosely coupled injections (#408) @​rmannibucau
  • Try to get rid of legacy API which can break starting with java 17 (#409) @​rmannibucau

🐛 Bug Fixes

📦 Dependency updates

👻 Maintenance

🔧 Build

Commits
  • d28f608 [maven-release-plugin] prepare release 3.2.0
  • 96d307b Bump org.codehaus.mojo:mojo-parent from 78 to 80 (#419)
  • 0134866 Fix #401 - Maven v4 compatibility
  • 198c289 Bump commons-io:commons-io in /src/it/projects/setup-parent
  • 9babd4e Bump release-drafter/release-drafter from 5 to 6
  • 97f3161 Bump project version to 3.2.0-SNAPSHOT
  • 594cb0f ITs improvement
  • bf6a0f1 Fix documentation formatting, add menu items for new examples
  • 1d90140 Execute mexec-137 also on unix family
  • a7090d0 Fixes #408, enable to exec:java runnables and not only mains with loosely cou...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the java group in /java with 8 updates
5a32b08 
Bumps the java group in /java with 8 updates:

| Package | From | To |
| --- | --- | --- |
| [org.assertj:assertj-core](https://github.com/assertj/assertj) | `3.25.1` | `3.25.3` |
| [org.apache.maven.plugins:maven-surefire-plugin](https://github.com/apache/maven-surefire) | `3.2.3` | `3.2.5` |
| [com.google.protobuf:protobuf-java](https://github.com/protocolbuffers/protobuf) | `3.25.1` | `3.25.3` |
| com.google.protobuf:protobuf-java-util | `3.25.1` | `3.25.3` |
| com.google.protobuf:protobuf-java-util | `3.25.1` | `3.25.3` |
| [org.apache.maven.plugins:maven-shade-plugin](https://github.com/apache/maven-shade-plugin) | `3.5.1` | `3.5.2` |
| [io.grpc:grpc-bom](https://github.com/grpc/grpc-java) | `1.60.1` | `1.61.1` |
| [com.google.api.grpc:proto-google-common-protos](https://github.com/googleapis/sdk-platform-java) | `2.30.0` | `2.34.0` |
| [org.codehaus.mojo:exec-maven-plugin](https://github.com/mojohaus/exec-maven-plugin) | `3.1.1` | `3.2.0` |


Updates `org.assertj:assertj-core` from 3.25.1 to 3.25.3
- [Release notes](https://github.com/assertj/assertj/releases)
- [Commits](assertj/assertj@assertj-build-3.25.1...assertj-build-3.25.3)

Updates `org.apache.maven.plugins:maven-surefire-plugin` from 3.2.3 to 3.2.5
- [Release notes](https://github.com/apache/maven-surefire/releases)
- [Commits](apache/maven-surefire@surefire-3.2.3...surefire-3.2.5)

Updates `com.google.protobuf:protobuf-java` from 3.25.1 to 3.25.3
- [Release notes](https://github.com/protocolbuffers/protobuf/releases)
- [Changelog](https://github.com/protocolbuffers/protobuf/blob/main/protobuf_release.bzl)
- [Commits](protocolbuffers/protobuf@v3.25.1...v3.25.3)

Updates `com.google.protobuf:protobuf-java-util` from 3.25.1 to 3.25.3

Updates `com.google.protobuf:protobuf-java-util` from 3.25.1 to 3.25.3

Updates `org.apache.maven.plugins:maven-shade-plugin` from 3.5.1 to 3.5.2
- [Release notes](https://github.com/apache/maven-shade-plugin/releases)
- [Commits](apache/maven-shade-plugin@maven-shade-plugin-3.5.1...maven-shade-plugin-3.5.2)

Updates `io.grpc:grpc-bom` from 1.60.1 to 1.61.1
- [Release notes](https://github.com/grpc/grpc-java/releases)
- [Commits](grpc/grpc-java@v1.60.1...v1.61.1)

Updates `com.google.api.grpc:proto-google-common-protos` from 2.30.0 to 2.34.0
- [Release notes](https://github.com/googleapis/sdk-platform-java/releases)
- [Changelog](https://github.com/googleapis/sdk-platform-java/blob/main/CHANGELOG.md)
- [Commits](googleapis/sdk-platform-java@v2.30.0...v2.34.0)

Updates `org.codehaus.mojo:exec-maven-plugin` from 3.1.1 to 3.2.0
- [Release notes](https://github.com/mojohaus/exec-maven-plugin/releases)
- [Commits](mojohaus/exec-maven-plugin@3.1.1...3.2.0)

---
updated-dependencies:
- dependency-name: org.assertj:assertj-core
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: java
- dependency-name: org.apache.maven.plugins:maven-surefire-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: java
- dependency-name: com.google.protobuf:protobuf-java
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: java
- dependency-name: com.google.protobuf:protobuf-java-util
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: java
- dependency-name: com.google.protobuf:protobuf-java-util
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: java
- dependency-name: org.apache.maven.plugins:maven-shade-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: java
- dependency-name: io.grpc:grpc-bom
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: java
- dependency-name: com.google.api.grpc:proto-google-common-protos
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: java
- dependency-name: org.codehaus.mojo:exec-maven-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: java
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added Dependencies Updates a dependency Java Java/JVM language support labels Feb 26, 2024
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Mar 4, 2024

Superseded by #1077.

@dependabot dependabot bot closed this Mar 4, 2024
@dependabot dependabot bot deleted the dependabot/maven/java/java-681b0f0a44 branch March 4, 2024 11:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
Dependencies Updates a dependency Java Java/JVM language support
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants